openstack-k8s-operators
diff --git a/‎api/bases/telemetry.openstack.org_autoscalings.yaml‎
Lines changed: 8 additions & 0 deletions b/‎api/bases/telemetry.openstack.org_autoscalings.yaml‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎api/bases/telemetry.openstack.org_ceilometers.yaml‎
Lines changed: 8 additions & 0 deletions b/‎api/bases/telemetry.openstack.org_ceilometers.yaml‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎api/bases/telemetry.openstack.org_cloudkitties.yaml‎
Lines changed: 8 additions & 0 deletions b/‎api/bases/telemetry.openstack.org_cloudkitties.yaml‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎api/bases/telemetry.openstack.org_cloudkittyapis.yaml‎
Lines changed: 8 additions & 0 deletions b/‎api/bases/telemetry.openstack.org_cloudkittyapis.yaml‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎api/bases/telemetry.openstack.org_cloudkittyprocs.yaml‎
Lines changed: 8 additions & 0 deletions b/‎api/bases/telemetry.openstack.org_cloudkittyprocs.yaml‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎api/bases/telemetry.openstack.org_telemetries.yaml‎
Lines changed: 24 additions & 0 deletions b/‎api/bases/telemetry.openstack.org_telemetries.yaml‎
Lines changed: 24 additions & 0 deletions
diff --git a/‎api/go.mod‎
Lines changed: 7 additions & 1 deletion b/‎api/go.mod‎
Lines changed: 7 additions & 1 deletion
diff --git a/‎api/go.sum‎
Lines changed: 10 additions & 0 deletions b/‎api/go.sum‎
Lines changed: 10 additions & 0 deletions
diff --git a/‎api/v1beta1/autoscaling_types.go‎
Lines changed: 5 additions & 0 deletions b/‎api/v1beta1/autoscaling_types.go‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎api/v1beta1/autoscaling_webhook.go‎
Lines changed: 5 additions & 0 deletions b/‎api/v1beta1/autoscaling_webhook.go‎
Lines changed: 5 additions & 0 deletions
@@ -70,6 +70,14 @@ spec:
                     default: 60
                     description: APITimeout for Route and Apache
                     type: integer
+                  auth:
+                    description: Auth - authentication settings for keystone integration
+                    properties:
+                      applicationCredentialSecret:
+                        description: ApplicationCredentialSecret - secret name for
+                          application credential
+                        type: string
+                    type: object
                   customConfigsSecretName:
                     description: |-
                       A name of a secret containing custom configuration files. Files
 
@@ -116,6 +116,14 @@ spec:
                 default: 60
                 description: APITimeout for Apache
                 type: integer
+              auth:
+                description: Auth - authentication settings for keystone integration
+                properties:
+                  applicationCredentialSecret:
+                    description: ApplicationCredentialSecret - secret name for application
+                      credential
+                    type: string
+                type: object
               centralImage:
                 type: string
               computeImage:
 
@@ -43,6 +43,14 @@ spec:
                 default: 60
                 description: APITimeout for HAProxy, Apache, and rpc_response_timeout
                 type: integer
+              auth:
+                description: Auth - authentication settings for keystone integration
+                properties:
+                  applicationCredentialSecret:
+                    description: ApplicationCredentialSecret - secret name for application
+                      credential
+                    type: string
+                type: object
               cloudKittyAPI:
                 description: CloudKittyAPI - Spec definition for the API service of
                   this CloudKitty deployment
 
@@ -39,6 +39,14 @@ spec:
           spec:
             description: CloudKittyAPISpec defines the desired state of CloudKittyAPI
             properties:
+              auth:
+                description: Auth - authentication settings for keystone integration
+                properties:
+                  applicationCredentialSecret:
+                    description: ApplicationCredentialSecret - secret name for application
+                      credential
+                    type: string
+                type: object
               containerImage:
                 description: ContainerImage - CloudKitty Container Image URL (will
                   be set to environmental default if empty)
 
@@ -53,6 +53,14 @@ spec:
             description: CloudKittyProcSpec defines the desired state of CloudKitty
               Processor
             properties:
+              auth:
+                description: Auth - authentication settings for keystone integration
+                properties:
+                  applicationCredentialSecret:
+                    description: ApplicationCredentialSecret - secret name for application
+                      credential
+                    type: string
+                type: object
               containerImage:
                 description: ContainerImage - CloudKitty Container Image URL (will
                   be set to environmental default if empty)
 
@@ -73,6 +73,14 @@ spec:
                         default: 60
                         description: APITimeout for Route and Apache
                         type: integer
+                      auth:
+                        description: Auth - authentication settings for keystone integration
+                        properties:
+                          applicationCredentialSecret:
+                            description: ApplicationCredentialSecret - secret name
+                              for application credential
+                            type: string
+                        type: object
                       customConfigsSecretName:
                         description: |-
                           A name of a secret containing custom configuration files. Files
@@ -439,6 +447,14 @@ spec:
                     default: 60
                     description: APITimeout for Apache
                     type: integer
+                  auth:
+                    description: Auth - authentication settings for keystone integration
+                    properties:
+                      applicationCredentialSecret:
+                        description: ApplicationCredentialSecret - secret name for
+                          application credential
+                        type: string
+                    type: object
                   centralImage:
                     type: string
                   computeImage:
@@ -614,6 +630,14 @@ spec:
                     default: 60
                     description: APITimeout for HAProxy, Apache, and rpc_response_timeout
                     type: integer
+                  auth:
+                    description: Auth - authentication settings for keystone integration
+                    properties:
+                      applicationCredentialSecret:
+                        description: ApplicationCredentialSecret - secret name for
+                          application credential
+                        type: string
+                    type: object
                   cloudKittyAPI:
                     description: CloudKittyAPI - Spec definition for the API service
                       of this CloudKitty deployment
 
@@ -4,6 +4,7 @@ go 1.24.4
 
 require (
 	github.com/openstack-k8s-operators/infra-operator/apis v0.6.1-0.20260108154501-11e5091cddf1
+	github.com/openstack-k8s-operators/keystone-operator/api v0.6.1-0.20260109123729-8c46aa6cb459
 	github.com/openstack-k8s-operators/lib-common/modules/common v0.6.1-0.20251230215914-6ba873b49a35
 	github.com/rhobs/observability-operator v0.3.1
 	k8s.io/api v0.31.14
@@ -16,7 +17,6 @@ require (
 	github.com/cespare/xxhash/v2 v2.3.0 // indirect
 	github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc // indirect
 	github.com/emicklei/go-restful/v3 v3.12.2 // indirect
-	github.com/evanphx/json-patch v5.9.11+incompatible // indirect
 	github.com/evanphx/json-patch/v5 v5.9.11 // indirect
 	github.com/fsnotify/fsnotify v1.9.0 // indirect
 	github.com/fxamacker/cbor/v2 v2.9.0 // indirect
@@ -31,13 +31,17 @@ require (
 	github.com/google/go-cmp v0.7.0 // indirect
 	github.com/google/gofuzz v1.2.0 // indirect
 	github.com/google/uuid v1.6.0 // indirect
+	github.com/gophercloud/gophercloud/v2 v2.8.0 // indirect
 	github.com/imdario/mergo v0.3.16 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/json-iterator/go v1.1.12 // indirect
 	github.com/mailru/easyjson v0.9.0 // indirect
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.3-0.20250322232337-35a7c28c31ee // indirect
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
+	github.com/openshift/api v3.9.0+incompatible // indirect
+	github.com/openstack-k8s-operators/lib-common/modules/openstack v0.6.1-0.20251230215914-6ba873b49a35 // indirect
+	github.com/openstack-k8s-operators/lib-common/modules/storage v0.6.1-0.20251230215914-6ba873b49a35 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/prometheus/client_golang v1.22.0 // indirect
 	github.com/prometheus/client_model v0.6.2 // indirect
@@ -91,3 +95,5 @@ replace k8s.io/component-base => k8s.io/component-base v0.31.13 //allow-merging
 replace github.com/rabbitmq/cluster-operator/v2 => github.com/openstack-k8s-operators/rabbitmq-cluster-operator/v2 v2.6.1-0.20250929174222-a0d328fa4dec //allow-merging
 
 replace k8s.io/kube-openapi => k8s.io/kube-openapi v0.0.0-20250627150254-e9823e99808e //allow-merging
+
+replace github.com/openstack-k8s-operators/keystone-operator/api => github.com/Deydra71/keystone-operator/api v0.0.0-20251211085602-3e1a3e022c81
@@ -1,3 +1,5 @@
+github.com/Deydra71/keystone-operator/api v0.0.0-20251211085602-3e1a3e022c81 h1:plax+NFgJJL1SrERyXAnf3jOHRhLTtBlJ2oc7d84EoU=
+github.com/Deydra71/keystone-operator/api v0.0.0-20251211085602-3e1a3e022c81/go.mod h1:b98Jl8eyUw8V07l9YiuQnoMlnWC748oV8IhXH15NCC4=
 github.com/Masterminds/semver/v3 v3.4.0 h1:Zog+i5UMtVoCU8oKka5P7i9q9HgrJeGzI9SA1Xbatp0=
 github.com/Masterminds/semver/v3 v3.4.0/go.mod h1:4V+yj/TJE1HU9XfppCwVMZq3I84lprf4nC11bSS5beM=
 github.com/beorn7/perks v1.0.1 h1:VlbKKnNfV8bJzeqoa4cOKqO6bYr3WgKZxO8Z16+hsOM=
@@ -48,6 +50,8 @@ github.com/google/pprof v0.0.0-20250403155104-27863c87afa6 h1:BHT72Gu3keYf3ZEu2J
 github.com/google/pprof v0.0.0-20250403155104-27863c87afa6/go.mod h1:boTsfXsheKC2y+lKOCMpSfarhxDeIzfZG1jqGcPl3cA=
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
 github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/gophercloud/gophercloud/v2 v2.8.0 h1:of2+8tT6+FbEYHfYC8GBu8TXJNsXYSNm9KuvpX7Neqo=
+github.com/gophercloud/gophercloud/v2 v2.8.0/go.mod h1:Ki/ILhYZr/5EPebrPL9Ej+tUg4lqx71/YH2JWVeU+Qk=
 github.com/imdario/mergo v0.3.16 h1:wwQJbIsHYGMUyLSPrEq1CT16AhnhNJQ51+4fdHUnCl4=
 github.com/imdario/mergo v0.3.16/go.mod h1:WBLT9ZmE3lPoWsEzCh9LPo3TiwVN+ZKEjmz+hD27ysY=
 github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8HmY=
@@ -78,10 +82,16 @@ github.com/onsi/ginkgo/v2 v2.27.3 h1:ICsZJ8JoYafeXFFlFAG75a7CxMsJHwgKwtO+82SE9L8
 github.com/onsi/ginkgo/v2 v2.27.3/go.mod h1:ArE1D/XhNXBXCBkKOLkbsb2c81dQHCRcF5zwn/ykDRo=
 github.com/onsi/gomega v1.38.3 h1:eTX+W6dobAYfFeGC2PV6RwXRu/MyT+cQguijutvkpSM=
 github.com/onsi/gomega v1.38.3/go.mod h1:ZCU1pkQcXDO5Sl9/VVEGlDyp+zm0m1cmeG5TOzLgdh4=
+github.com/openshift/api v3.9.0+incompatible h1:fJ/KsefYuZAjmrr3+5U9yZIZbTOpVkDDLDLFresAeYs=
+github.com/openshift/api v3.9.0+incompatible/go.mod h1:dh9o4Fs58gpFXGSYfnVxGR9PnV53I8TW84pQaJDdGiY=
 github.com/openstack-k8s-operators/infra-operator/apis v0.6.1-0.20260108154501-11e5091cddf1 h1:zAbZVtpldi1TU/CO9aU2ZByzcsi+N3aIv6snpSjBVLY=
 github.com/openstack-k8s-operators/infra-operator/apis v0.6.1-0.20260108154501-11e5091cddf1/go.mod h1:ZXwFlspJCdZEUjMbmaf61t5AMB4u2vMyAMMoe/vJroE=
 github.com/openstack-k8s-operators/lib-common/modules/common v0.6.1-0.20251230215914-6ba873b49a35 h1:pF3mJ3nwq6r4qwom+rEWZNquZpcQW/iftHlJ1KPIDsk=
 github.com/openstack-k8s-operators/lib-common/modules/common v0.6.1-0.20251230215914-6ba873b49a35/go.mod h1:kycZyoe7OZdW1HUghr2nI3N7wSJtNahXf6b/ypD14f4=
+github.com/openstack-k8s-operators/lib-common/modules/openstack v0.6.1-0.20251230215914-6ba873b49a35 h1:IdcI8DFvW8rXtchONSzbDmhhRp1YyO2YaBJDBXr44Gk=
+github.com/openstack-k8s-operators/lib-common/modules/openstack v0.6.1-0.20251230215914-6ba873b49a35/go.mod h1:zOX7Y05keiSppIvLabuyh42QHBMhCcoskAtxFRbwXKo=
+github.com/openstack-k8s-operators/lib-common/modules/storage v0.6.1-0.20251230215914-6ba873b49a35 h1:8WZYfCt1VJHa5sJRX0UhpmoXud/fn8LHQhXsakdYXuQ=
+github.com/openstack-k8s-operators/lib-common/modules/storage v0.6.1-0.20251230215914-6ba873b49a35/go.mod h1:H0aQANk8iJPRhS2Bg9n6cYb/IHF0Cks9g7+uZG04Rhk=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 
@@ -142,6 +142,11 @@ type AodhCore struct {
 	// from this secret will get copied into /etc/aodh/ and they'll
 	// overwrite any default files already present there.
 	CustomConfigsSecretName string `json:"customConfigsSecretName,omitempty"`
+
+	// +kubebuilder:validation:Optional
+	// +operator-sdk:csv:customresourcedefinitions:type=spec
+	// Auth - authentication settings for keystone integration
+	Auth AuthSpec `json:"auth,omitempty"`
 }
 
 // AutoscalingSpec defines the desired state of Autoscaling
 
@@ -19,6 +19,7 @@ package v1beta1
 import (
 	"fmt"
 
+	keystonev1 "github.com/openstack-k8s-operators/keystone-operator/api/v1beta1"
 	"k8s.io/apimachinery/pkg/runtime"
 	logf "sigs.k8s.io/controller-runtime/pkg/log"
 	"sigs.k8s.io/controller-runtime/pkg/webhook"
@@ -76,6 +77,10 @@ func (spec *AodhCore) Default() {
 	if spec.MemcachedInstance == "" {
 		spec.MemcachedInstance = "memcached"
 	}
+	// Default Auth fields for Application Credentials
+	if spec.Auth.ApplicationCredentialSecret == "" {
+		spec.Auth.ApplicationCredentialSecret = keystonev1.GetACSecretName("aodh")
+	}
 }
 
 // SetDefaultRouteAnnotations sets HAProxy timeout values of the route